Comandos Fortinet
Listado de comandos útiles para equipos Fortigate
============Configuracion de Interfaz de red=========================
config-system interface
edit port1
set ip x.x.x.x x.x.x.x.x
set alowaccess http https ping ssh
end
===================Sniffer a puerto en especifico====================
diag sniffer packet any "port 80" 4
diag sniffer packet any "port 80"
diag sniffer packet any 'port 80 and dst host X.X.X.X'
==============Ver lease dhcp====================================
execute dhcp lease-list
===============Ver status y errores de interfaz========================
get hardware nic internal1
get system interface
===============Version FortiOS==================================
get system status
=============================== Reinicio IPS ====================
diagnose test application ipsmonitor 99
===================== Monitoreo de uso de memoria y CPU=============
diag sys top
===================== Informacion de Memoria RAM Forti=============
get hardware memory
========================= Ver estado de HA ======================
get system ha status
para verificar el el otro participante del cluster
execute ha manage 1
get system ha status
============= Revisar si Fortigate se encunetra en conserve mode ==========
0 = no
1 = si
diagnose hardware sysinfo shm
============Configuracion de Interfaz de red=========================
config-system interface
edit port1
set ip x.x.x.x x.x.x.x.x
set alowaccess http https ping ssh
end
===================Sniffer a puerto en especifico====================
diag sniffer packet any "port 80" 4
diag sniffer packet any "port 80"
diag sniffer packet any 'port 80 and dst host X.X.X.X'
==============Ver lease dhcp====================================
execute dhcp lease-list
===============Ver status y errores de interfaz========================
get hardware nic internal1
get system interface
===============Version FortiOS==================================
get system status
=============================== Reinicio IPS ====================
diagnose test application ipsmonitor 99
===================== Monitoreo de uso de memoria y CPU=============
diag sys top
===================== Informacion de Memoria RAM Forti=============
get hardware memory
========================= Ver estado de HA ======================
get system ha status
para verificar el el otro participante del cluster
execute ha manage 1
get system ha status
============= Revisar si Fortigate se encunetra en conserve mode ==========
0 = no
1 = si
diagnose hardware sysinfo shm
============== Revisar tabla de rutas ===========
get router info routing-table
Configurar dns
config system dns
set primary <address_ipv4>
set secondary <address_ipv4>
set domain <local-domain_str>
end
Comentarios
Publicar un comentario